Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: zJeAtDoSGam6wZf7YswKiYuoT0vWCcQmpbFuRs0owok=
Subject key identifier: C2:4E:0E:1A:CB:E9:2A:A3:49:A9:5B:50:E7:0D:F2:5C:14:75:70:3A
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 426F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 41D1
Signing time: Sun 19 May 2024 19:59:14 +0000
Manifest this update: Sun 19 May 2024 19:59:13 +0000
Manifest next update: Sun 26 May 2024 19:59:13 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 7BDveCPptyZIzFjtinyXYcSKB3bmDGWFZ9qliK94sRs=)
2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: NfJ53EghURDMb4YUUQ2khLIOYv3z+PllwEEllV4RSvY=)
3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: I57g7UURifl1rN5HCmANeVZX/RZ1zm10FgQBzo4Ieak=)
4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: nH4HcxvHCks4lwSYOfj8uqEK1Tlggt8L6lAOWOozK/U=)
5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: /UW3JtgCtF5fWiYKRezlOOrOjrKDeAy672BjlI2Yvc4=)
6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: szEprYu4wi6Cg+c7jnvZyVGVK4glrb/TFfOLJ8yLGZE=)
7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: JfmnhAczYnZDlsnqA/UDLN5g2nk9WzAYWsyL4Kstl+A=)
8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: /QFaqjwzIGN7jLFULhOAmvu0olDCiNJa+/UK89T3stc=)
9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: zJB5Ytp3hpkxLSO5RSO4jarjOh0LhETvjYF4YUB0++M=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 May 2024 19:59:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17007 (0x426f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: May 19 19:59:13 2024 GMT
Not After : May 26 19:59:13 2024 GMT
Subject: CN=664a5a12-3d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:90:9f:7a:b9:b5:09:82:87:8d:70:93:65:1b:
af:80:de:10:a3:11:f4:45:2e:70:d8:12:03:59:09:
ea:c4:28:eb:24:73:d6:c6:32:3c:8d:fc:b2:8c:dd:
bc:17:be:70:52:ab:0b:97:4e:58:06:22:9f:ce:15:
1c:b6:85:32:00:a5:18:c5:c5:cd:32:f0:cb:61:40:
95:14:7a:dd:0a:83:43:54:48:c2:88:0e:e0:97:58:
db:6c:5e:4e:a8:ef:ad:96:d0:1a:44:b9:63:09:b2:
5c:7c:05:30:55:19:b0:e1:a9:46:48:39:7d:ac:fb:
ff:79:7e:6a:c5:cd:b4:1c:98:ae:91:21:35:d8:b5:
fd:2d:3f:89:e9:af:d5:f0:60:45:c7:d9:b4:12:7e:
8a:8c:b6:0e:88:28:2b:d7:d4:bd:b4:dc:cc:14:48:
d1:86:c5:fa:ba:62:66:7f:5e:58:bd:94:39:92:bb:
ce:6f:63:a6:e3:1b:db:15:4f:e8:8f:a0:cb:b2:d5:
0d:73:35:79:3e:29:86:1f:e4:e0:b3:fd:96:a3:8f:
df:f2:3d:96:84:b9:af:b7:c2:41:57:c6:88:92:30:
fd:af:22:a0:c8:64:03:2b:cf:ef:cb:a6:04:30:95:
fb:55:e0:ba:1e:58:4b:cc:d5:76:45:e8:40:62:b7:
98:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:4E:0E:1A:CB:E9:2A:A3:49:A9:5B:50:E7:0D:F2:5C:14:75:70:3A
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ac:a7:ed:d8:db:03:75:be:dc:bf:a5:20:33:25:5c:c5:eb:
c4:22:4a:1f:23:cf:3d:dd:7c:04:d9:e5:6b:71:cc:91:40:e1:
30:01:1a:5a:49:6b:a8:f0:31:f3:55:30:31:ca:5a:0b:ef:c9:
f7:95:f3:78:03:1c:4a:77:8b:23:cf:67:5d:53:58:f4:fa:06:
a7:b4:19:0d:e9:dc:be:5a:60:be:2b:12:df:2a:01:d4:8e:17:
0d:f2:b0:da:f3:a9:e8:dd:44:68:fc:be:a2:de:26:df:58:8c:
66:2b:93:41:ab:68:9a:2e:b4:c7:ee:38:ad:bf:17:fc:bf:9c:
c8:b7:c7:52:e8:8d:09:02:08:6f:34:e3:1f:62:1a:63:71:86:
7a:c2:76:53:53:21:ef:79:76:6f:36:02:ad:b1:0a:9f:5f:05:
eb:79:ab:70:6c:cc:2e:77:df:c5:66:aa:56:d2:30:27:0a:8e:
98:9e:5d:0b:21:74:70:6f:88:41:81:3b:5c:06:36:8d:63:f5:
d0:f0:a9:78:f9:81:e5:8d:33:24:8f:80:b9:4b:e2:d2:b4:60:
f1:f1:0d:b3:b4:d0:84:ee:41:27:69:c8:19:05:f8:8b:e3:46:
4f:bb:b2:08:ec:80:c9:c2:10:f9:57:8b:8f:78:7f:44:96:ad:
ca:e5:8f:0a
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgICQm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz
M0NDOEVBMjIwHhcNMjQwNTE5MTk1OTEzWhcNMjQwNTI2MTk1OTEzWjAYMRYwFAYD
VQQDEw02NjRhNWExMi0zZDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtJCferm1CYKHjXCTZRuvgN4QoxH0RS5w2BIDWQnqxCjrJHPWxjI8jfyyjN28
F75wUqsLl05YBiKfzhUctoUyAKUYxcXNMvDLYUCVFHrdCoNDVEjCiA7gl1jbbF5O
qO+tltAaRLljCbJcfAUwVRmw4alGSDl9rPv/eX5qxc20HJiukSE12LX9LT+J6a/V
8GBFx9m0En6KjLYOiCgr19S9tNzMFEjRhsX6umJmf15YvZQ5krvOb2Om4xvbFU/o
j6DLstUNczV5PimGH+Tgs/2Wo4/f8j2WhLmvt8JBV8aIkjD9ryKgyGQDK8/vy6YE
MJX7VeC6HlhLzNV2RehAYreY4wIDAQABo4IChzCCAoMwHQYDVR0OBBYEFMJODhrL
6SqjSalbUOcN8lwUdXA6MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi
MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG
RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN
X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw
MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk
ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE
MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN
hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB
BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA
AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQChrKft2NsDdb7cv6UgMyVcxevEIkofI889
3XwE2eVrccyRQOEwARpaSWuo8DHzVTAxyloL78n3lfN4AxxKd4sjz2ddU1j0+gan
tBkN6dy+WmC+KxLfKgHUjhcN8rDa86no3URo/L6i3ibfWIxmK5NBq2iaLrTH7jit
vxf8v5zIt8dS6I0JAghvNOMfYhpjcYZ6wnZTUyHveXZvNgKtsQqfXwXreatwbMwu
d9/FZqpW0jAnCo6Ynl0LIXRwb4hBgTtcBjaNY/XQ8Kl4+YHljTMkj4C5S+LStGDx
8Q2ztNCE7kEnacgZBfiL40ZPu7II7IDJwhD5V4uPeH9Elq3K5Y8K
-----END CERTIFICATE-----
Generated at Sun May 19 20:54:52 2024 by rpki-client on console-ams.rpki-client.org